CVE-2024-56569

Summary

In the Linux kernel, the following vulnerability has been resolved:

ftrace: Fix regression with module command in stack_trace_filter

When executing the following command:

# echo "write*:mod:ext3" > /sys/kernel/tracing/stack_trace_filter

The current mod command causes a null pointer dereference. While commit 0f17976568b3f ("ftrace: Fix regression with module command in stack_trace_filter") has addressed part of the issue, it left a corner case unhandled, which still results in a kernel crash.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux04ec7bb642b77374b53731b795b5654b5aff1c00 < 43ca32ce12888fb0eeb2d74dfc558dea60d3473eaffected
LinuxLinux04ec7bb642b77374b53731b795b5654b5aff1c00 < 5dabb7af57bc72308a6e2e81a5dd756eef283803affected
LinuxLinux04ec7bb642b77374b53731b795b5654b5aff1c00 < 885109aa0c70639527dd6a65c82e63c9ac055e3daffected
LinuxLinux04ec7bb642b77374b53731b795b5654b5aff1c00 < 7ae27880de3482e063fcc1f72d9a298d0d391407affected
LinuxLinux04ec7bb642b77374b53731b795b5654b5aff1c00 < 8a92dc4df89c50bdb26667419ea70e0abbce456eaffected
LinuxLinux04ec7bb642b77374b53731b795b5654b5aff1c00 < 19cacabdd5a8487ae566cbecb4d03bcb038a067eaffected
LinuxLinux04ec7bb642b77374b53731b795b5654b5aff1c00 < 45af52e7d3b8560f21d139b3759735eead8b1653affected
LinuxLinux4.12affected
LinuxLinux0 < 4.12unaffected
LinuxLinux5.4.287 <= 5.4.*unaffected
LinuxLinux5.10.231 <= 5.10.*unaffected
LinuxLinux5.15.174 <= 5.15.*unaffected
LinuxLinux6.1.120 <= 6.1.*unaffected
LinuxLinux6.6.64 <= 6.6.*unaffected
LinuxLinux6.12.4 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References